Home | History | Annotate | Line # | Download | only in passwd
local_passwd.c revision 1.8 
      1 /*-
      2  * Copyright (c) 1990 The Regents of the University of California.
      3  * All rights reserved.
      4  *
      5  * Redistribution and use in source and binary forms, with or without
      6  * modification, are permitted provided that the following conditions
      7  * are met:
      8  * 1. Redistributions of source code must retain the above copyright
      9  *    notice, this list of conditions and the following disclaimer.
     10  * 2. Redistributions in binary form must reproduce the above copyright
     11  *    notice, this list of conditions and the following disclaimer in the
     12  *    documentation and/or other materials provided with the distribution.
     13  * 3. All advertising materials mentioning features or use of this software
     14  *    must display the following acknowledgement:
     15  *	This product includes software developed by the University of
     16  *	California, Berkeley and its contributors.
     17  * 4. Neither the name of the University nor the names of its contributors
     18  *    may be used to endorse or promote products derived from this software
     19  *    without specific prior written permission.
     20  *
     21  * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
     22  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
     23  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
     24  * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
     25  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
     26  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
     27  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
     28  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
     29  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
     30  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
     31  * SUCH DAMAGE.
     32  */
     33 
     34 #ifndef lint
     35 /*static char sccsid[] = "from: @(#)local_passwd.c	5.5 (Berkeley) 5/6/91";*/
     36 static char rcsid[] = "$Id: local_passwd.c,v 1.8 1996/05/15 21:55:26 jtc Exp $";
     37 #endif /* not lint */
     38 
     39 #include <sys/types.h>
     40 #include <sys/stat.h>
     41 #include <pwd.h>
     42 #include <errno.h>
     43 #include <stdio.h>
     44 #include <string.h>
     45 #include <unistd.h>
     46 #include <fcntl.h>
     47 #include <util.h>
     48 
     49 uid_t uid;
     50 
     51 char *progname = "passwd";
     52 char *tempname;
     53 
     54 local_passwd(uname)
     55 	char *uname;
     56 {
     57 	struct passwd *pw;
     58 	int pfd, tfd;
     59 	char *getnewpasswd();
     60 
     61 	if (!(pw = getpwnam(uname))) {
     62 #ifdef YP
     63 		extern int use_yp;
     64 		if (!use_yp)
     65 #endif
     66 		(void)fprintf(stderr, "passwd: unknown user %s.\n", uname);
     67 		return(1);
     68 	}
     69 
     70 	uid = getuid();
     71 	if (uid && uid != pw->pw_uid) {
     72 		(void)fprintf(stderr, "passwd: %s\n", strerror(EACCES));
     73 		return(1);
     74 	}
     75 
     76 	pw_init();
     77 	tfd = pw_lock(0);
     78 	if (tfd < 0)
     79 		errx(1, "the passwd file is busy.");
     80 	pfd = open(_PATH_MASTERPASSWD, O_RDONLY, 0);
     81 	if (pfd < 0)
     82 		pw_error(_PATH_MASTERPASSWD, 1, 1);
     83 
     84 	/*
     85 	 * Get the new password.  Reset passwd change time to zero; when
     86 	 * classes are implemented, go and get the "offset" value for this
     87 	 * class and reset the timer.
     88 	 */
     89 	pw->pw_passwd = getnewpasswd(pw);
     90 	pw->pw_change = 0;
     91 	pw_copy(pfd, tfd, pw);
     92 
     93 	if (pw_mkdb() < 0)
     94 		pw_error((char *)NULL, 0, 1);
     95 	return(0);
     96 }
     97 
     98 char *
     99 getnewpasswd(pw)
    100 	register struct passwd *pw;
    101 {
    102 	register char *p, *t;
    103 	int tries;
    104 	char buf[_PASSWORD_LEN+1], salt[9], *crypt(), *getpass();
    105 
    106 	(void)printf("Changing local password for %s.\n", pw->pw_name);
    107 
    108 	if (uid && pw->pw_passwd[0] &&
    109 	    strcmp(crypt(getpass("Old password:"), pw->pw_passwd),
    110 	    pw->pw_passwd)) {
    111 		errno = EACCES;
    112 		pw_error(NULL, 1, 1);
    113 	}
    114 
    115 	for (buf[0] = '\0', tries = 0;;) {
    116 		p = getpass("New password:");
    117 		if (!*p) {
    118 			(void)printf("Password unchanged.\n");
    119 			pw_error(NULL, 0, 0);
    120 		}
    121 		if (strlen(p) <= 5 && ++tries < 2) {
    122 			(void)printf("Please enter a longer password.\n");
    123 			continue;
    124 		}
    125 		for (t = p; *t && islower(*t); ++t);
    126 		if (!*t && ++tries < 2) {
    127 			(void)printf("Please don't use an all-lower case password.\nUnusual capitalization, control characters or digits are suggested.\n");
    128 			continue;
    129 		}
    130 		(void)strcpy(buf, p);
    131 		if (!strcmp(buf, getpass("Retype new password:")))
    132 			break;
    133 		(void)printf("Mismatch; try again, EOF to quit.\n");
    134 	}
    135 	/* grab a random printable character that isn't a colon */
    136 	(void)srandom((int)time((time_t *)NULL));
    137 #ifdef NEWSALT
    138 	salt[0] = _PASSWORD_EFMT1;
    139 	to64(&salt[1], (long)(29 * 25), 4);
    140 	to64(&salt[5], random(), 4);
    141 #else
    142 	to64(&salt[0], random(), 2);
    143 #endif
    144 	return(crypt(buf, salt));
    145 }
    146 
    147 static unsigned char itoa64[] =		/* 0 ... 63 => ascii - 64 */
    148 	"./0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz";
    149 
    150 to64(s, v, n)
    151 	register char *s;
    152 	register long v;
    153 	register int n;
    154 {
    155 	while (--n >= 0) {
    156 		*s++ = itoa64[v&0x3f];
    157 		v >>= 6;
    158 	}
    159 }
    160